OpenSSL vulnerability e is known to all.
When will be eliminated in the SSTP ? Openvpn?
If you would have bothered to do a search:
Heartbleed vulnerability OpenSSL [RouterOS IS NOT affected]
http://forum.mikrotik.com/t/heartbleed-vulnerability-openssl-routeros-is-not-affected/76038/1